What the vulnerability does

01Description

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via crafted HTTP POST request sent by a remote, authenticated attacker to /GponForm/usb_Form?script/. An attacker can leverage this vulnerability to potentially execute arbitrary code.

Key dates

02Disclosure timeline

March 5, 2019 CVE published
September 17, 2024 Record updated

Related vulnerabilities

04Related CVE